Google Project Zero Discovers ASLR Bypass via NSDictionary in Apple Devices

Sunday, 28 September

Sunday, 28 September, 2025

Google Project Zero Discovers ASLR Bypass via NSDictionary in Apple Devices

A researcher from Google Project Zero revealed a new method that bypasses Address Space Layout Randomization (ASLR) on Apple’s macOS and iOS without relying on memory corruption or timing side-channels. The exploit uses NSDictionary serialization/deserialization to leak memory addresses by tracking placement of entries in hash buckets, ultimately revealing the address of the NSNull singleton.

Read full story at Cybersecurity News

Tags:Google macos ASLR

Categories

Google Project Zero Discovers ASLR Bypass via NSDictionary in Apple Devices

Also Read

PNNL Joins Space ISAC to Bolster Global Space Security with Nuclear & Cyber Expertise

Google Project Zero Discovers ASLR Bypass via NSDictionary in Apple Devices

ByteDance Set to Receive ~50% of TikTok US Profits Under Trump-Brokered Deal

Vedantu Secures $11M Funding, Sets Sights on IPO by 2027 After Turning Profitable

RMG Ban Spurs Surge in Revenue Potential for India’s Non-Real-Money Gaming Sector

NCLAT Holds Decision on Meta-WhatsApp Data Sharing Appeal

Unsecured Cloud Leak Exposes 2.73 Lakh Bank Transaction Records

A Proactive ChatGPT Feature for Personalized Daily Briefings

Meta to Offer Ad-Free Facebook & Instagram Subscriptions in UK Amid Privacy Push

Subscribe To Our Newsletter.